General
-
Target
https://outlook.office365.com/Encryption/retrieve.ashx?recipientemailaddress=iulian.tudose%40rcs-rds.ro&senderemailaddress=carlos.mauricio%40ericsson.com&senderorganization=AwF%2fAAAAAnsAAAADAQAAADjPy0ggZo1BvJHHQp%2bz6mBPVT1lcmljc3Nvbi5vbm1pY3Jvc29mdC5jb20sT1U9TWljcm9zb2Z0IEV4Y2hhbmdlIEhvc3RlZCBPcmdhbml6YXRpb25zLERDPU5BTVBSMDhBOTAwLERDPVBST0QsREM9T1VUTE9PSyxEQz1DT03LhmW2EmHkTJnPl6kTQ01HQ049Q29uZmlndXJhdGlvbixDTj1lcmljc3Nvbi5vbm1pY3Jvc29mdC5jb20sQ049Q29uZmlndXJhdGlvblVuaXRzLERDPU5BTVBSMDhBOTAwLERDPVBST0QsREM9T1VUTE9PSyxEQz1DT00B&messageid=%3cDB7PR07MB4919613409B04A78ED68FF36A6D09%40DB7PR07MB4919.eurprd07.prod.outlook.com%3e&cfmRecipient=SystemMailbox%7b5b88e025-6549-4f08-9a3a-c79dfa860b28%7d%40ericsson.onmicrosoft.com&consumerEncryption=false&senderorgid=92e84ceb-fbfd-47ab-be52-080c6b87953f&urldecoded=1&e4e_sdata=Tb1IsYmVjUUSzsfO2LbvUmP70b4%2fANRR5Lr9yC0GSdQgZyhMk7ltfwmAxL%2bQvKJ%2bdCoIXTch5Fkc2TyRqfROdtNi1u1HHI1F0IphHJNlN9ne7mw%2fl4sozeXExSNJfzu7QowXzchMXyAxX9nC2ohKmviMCUOsBaQx5ZobMgss7pTeMWdGqMMgiFelOimzYfaBHli%2bWlm5oVCLSDW0tHK14pg9KDEqAe2qD4OoS0drb93WhlTt9ecn1NlQG%2fQtdY55xxKyGNuZ%2fpJMBvw2Rn%2fg0o4ji0T2QfPst5dOi7b%2fEnKapGBZfFXOmGXKhbkk8dHhUrABvO42UEuwcsV%2fW408vg%3d%3d
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]